1 to 25 of 30 OWASP Jobs in the South East

tools such as SAST, DAST, SCA, and CI/CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in … on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top 10, CWE, CVSS, MITRE ATT&CK and NIST frameworks. Experience conducting threat modelling, code reviews and penetration testing. Excellent communication skills with the ability to influence and educate development More ❯

operations teams on bug fixes, retesting, and verifying patches in staging and production-mirroring environments. Quality & Best Practices • Champion infrastructure and security testing best practices, including vulnerability scanning (e.g., OWASP ZAP, Nessus), compliance checks, and disaster-recovery validations. • Contribute to continuous improvement by proposing new testing tools, frameworks, and process enhancements to raise overall system reliability and observability. Agile & Cross More ❯

teams and business stakeholders is essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and … Security Architect, SDLC, Secure by Design, Architecture, Software Development, Engineering, DevOps, InfoSec, Security, Security Strategy, Best Practice, Programming, Code, C++, C#, C, .NET Core, Java, JavaScript, Node.js, Angular, React, OWASP, Agile, Application Threat Modelling, Security Policy, Security Controls, ISO 27001, NIST, GDPR, Cloud, Azure. Please note that due to a high level of applications, we can only respond to applicants More ❯

languages and Infrastructure as Code (Terraform, CloudFormation) •Familiarity with Jira or other ticketing systems – essential •Technical architecture design and review skills – essential •Ability to identify vulnerabilities using CWE or OWASP •Knowledge of operating systems and their hardening techniques •Understanding of development concepts such as CICD, Pipelines, and SDLC •Penetration testing knowledge is also super useful •Familiarity with Cloud Development Kit More ❯

/CD tools (e.g., Azure DevOps) Experience working in agile environments and cross-functional teams Familiarity with SEO, multilingual site setup and content strategy Understanding of security best practices (OWASP, GDPR, ISO27001) Experience deploying on Azure App Services or similar cloud platforms Ability to work under pressure and manage multiple tasks effectively BENEFITS: Competitive Salary: Base salary commensurate with experience More ❯

application monitoring platforms such as Dynatrace and Catchpoint. Understanding of .NET applications and experience making small code changes when required. Knowledge of Akamai or similar CDNs, perimeter security, and OWASP security guidelines. Strong networking experience across DNS, routing, load balancers, and firewalls. Skilled with enterprise‐level deployments across microservices and multi‐server environments. Experience with MLOps platforms (ideally Azure), database More ❯

EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD More ❯

AWS or Azure). Assist with containerisation (Docker/Kubernetes). Support implementation of authentication systems (OAuth 2.0, Auth0, AWS Cognito). Gain exposure to security best practices (e.g., OWASP). Work on RESTful API design and consumption. Collaborate on version control practices using Git, documentation, and code reviews. Desired Skills: Passion for software development and continuous learning. Some frontend More ❯

EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD More ❯

into effective security controls Key Skills & Experience: 5+ years in security architecture or consulting in regulated environments Deep knowledge of secure SDLC, DevSecOps, cloud (Azure/AWS), and frameworks (OWASP, MITRE) Hands-on experience with vulnerability tools, threat modelling, and compliance (GDPR, HIPAA, PCI) Strong communication and stakeholder engagement skills Technical knowledge across .NET, Java, scripting (Python, PowerShell), APIs, and More ❯

or internal testing roles considered) OSCP certification is essential (OSEP, OSCE3, or other advanced Offensive Security certifications also accepted) Demonstrable knowledge of Web Application security , including common vulnerabilities (e.g., OWASP Top 10) Strong desire to deepen technical capabilities across various domains, including infrastructure, cloud, and red teaming Excellent written and verbal communication skills Full right to work in the UK More ❯

Experience with Azure Managed Services, Docker, Kubernetes, Terraform, Helm Experience building modern web apps using Angular and Typescript Experience working in Azure DevOps managing backlogs etc Working knowledge of OWASP security best practices Knowledge of working with FedRamp compliance Our Employer Commitment This job posting will remain active until a qualified candidate is identified. At Ivanti, we are committed to More ❯

Minimum 5 years of practical penetration testing experience (web, infrastructure, external/internal). Experience in scoping penetration testing assessments. Strong knowledge of security testing methodologies and frameworks (eg, OWASP, NIST). Proficiency with industry-standard tools (eg, Burp Suite, Nmap, Metasploit, Kali Linux). Excellent written and verbal communication skills. OSCP is essential. Experience with red teaming or threat More ❯

team, contributing to an improved Bank security posture. Analytical skills to interpret data and provide insights into threats facing the bank. Awareness of common Cyber Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS and GDPR. Previous experience working within an organisations Cyber Incident Response function. Hands on experience with Information Security tools. About More ❯

experience with Government Digital Standards (GDS) Demonstrable experience in Test Automation using Playwright with JavaScript Expertise in Browserstack for use in compatibility testing Previous experience in security testing with OWASP ZAP Performance testing knowledge (JMeter preferred) Experience in CI/CD Integration for Test Automation Azure DevOps proficiency for Test Management and defect tracking Working experience of BDD Framework (Cucumber More ❯

Ensure delivery of high standards, documentation, and service levels Minimum Requirements: 3-5 years' experience in DevSecOps or related roles Knowledge and working experience of security frameworks and tools - OWASP, Snyk, etc. Good team player and able to work on own initiative Proven experience in mentoring other team members Proven ability of establishing strong, effective working relationships at all levels More ❯

senior role. The Role: Develop and maintain web apps using C#, .NET, Python and Javascript Collaborate with designers to ensure technical and visual alignment Write secure code compliant with OWASP standards The Person: Degree in Computer Science or a related field (preferred) Experience with C#,.NET, JavaScript, Python Based Basildon, happy working hybrid British Citizen Reference Number: BBBH19584 Keywords : Full More ❯

in different types of software and programming languages, including: How to test for/exploit them, real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) Ability to threat model systems/applications/platforms to assess design and find flaws that can be exploited What We’ll Give You A More ❯

will help you succeed Technical Skills: Experience with Governance, Risk, and Compliance (GRC) tools (preferred: OneTrust). Familiarity with AGILE methodologies, preferably Atlassian/Jira. Understanding of Application Security (OWASP Top 10). Knowledge of web development technologies and programming languages. Proficiency with security assessment tools and techniques. Understanding of legal and regulatory obligations related to information security. Risk Management More ❯

/negotiate technical outcomes with 3rd parties, including conflict resolution due to changing priorities. Experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA's Control Objectives for Information and related Technology (COBIT) frameworks. Actively represent the security organisation within More ❯

Technologies: C++ Python TCP/IP networking Test Plans Test Execution Linux Server windows server QA ISTQB AWS Services system programming owasp security VMware debugging skills multithreaded software A Software Test Engineer is required to join the software QA test team of our Buckinghamshire based client, a manufacturer of software for the telecommunications and speech processing market. This is a More ❯

and database design (Oracle, PL/SQL, Mongo) Performance & load test improvements via memory and thread dump analysis; knowledge of development testing (JUNIT, Cucumber, Selenium); understanding of Security aspects, OWASP guidelines. experience in Performance Analysis and applications tuning understanding of Kubernetes Identity and access management such as Forgerock different integration technologies, data streaming technologies and Kafka understanding of Kafka architecture More ❯

in different types of software and programming languages, including: How to test for/exploit them Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) What We’ll Give You A team of very skilled and diverse personnel across the globe Ability to work in a hybrid work environment Exposure More ❯

Information Security Engineer Buckinghamshire – 1 or 2 days a week in the office Up to £70,000 salary plus a discretionary bonus of up to 15% After a transformative 3-year change initiative, they have outlined a strategic 5-year More ❯

working with multi-disciplinary teams. Knowledge and experience of applying best practice for handling personal data. E.g., GDPR. Knowledge and experience of applying best practice for solution security. E.g., OWASP, NCSC cloud security principles. Knowledge and experience of applying best practice within one or more specialist architecture domains. Knowledge and experience of delivering complex technology services across one or more More ❯